High
CVE-2022-1405 CVSS:7.8
The affected product does not properly sanitize input while processing a specific project file, allowing a possible stack-based buffer overflow condition.
CVE-2022-1404 CVSS:3.3
The affected product does not properly sanitize input while processing a specific project file, allowing a possible out-of-bounds read condition.
Arbitrary Code Execution
Information Disclosure
Delta Electronics
CNCSoft: All versions prior to 1.01.32
Refer to CISA-CERT Advisory for the patch, upgrade, or suggested workaround information.